Vulnerability Details CVE-2018-0784
ASP.NET Core 1.0. 1.1, and 2.0 allow an elevation of privilege vulnerability due to the ASP.NET Core project templates, aka "ASP.NET Core Elevation Of Privilege Vulnerability". This CVE is unique from CVE-2018-0808.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.087
EPSS Ranking 92.0%
CVSS Severity
CVSS v3 Score 8.8
CVSS v2 Score 6.8
References
- http://www.securityfocus.com/bid/102377
- http://www.securitytracker.com/id/1040151
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-0784
- http://www.securityfocus.com/bid/102377
- http://www.securitytracker.com/id/1040151
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-0784
Products affected by CVE-2018-0784
-
cpe:2.3:a:microsoft:asp.net_core:2.0